WorstPasswords-2014

Just a note that agileBase’s password strength rules have been updated. If you have a weak password, the next time you log in, you will be asked to change it before continuing to use your applications.

If you can’t think of a good password, the website http://correcthorsebatterystaple.net can generate memorable samples made up of random words, such as ‘Secret Performance Walk 6’ or ‘Seize Open Old-fashioned 5’ (please don’t use these as actual passwords!). You can use spaces, numbers, punctuation and capital letters in your passwords.

Still, a lot of people find long passwords annoying and hard to remember, especially when it’s best practice to use a different password for every website or application. The reason for that, by the way, is that if one site is hacked and your password stolen, the people who stole it now know how to get into lots of other apps, if you use the same password.

So we and lots of security professionals recommend the use of a ‘password manager’ such as 1password or lastpass. These remove the hassle of thinking up and remembering all your passwords. They also integrate with web browsers to fill in your passwords automatically. Most have apps for phones and tablets too.

In related news, you may have noticed you sometimes get an email when you log in, stating that you’ve logged in from a new device or location. This only happens the first time you log in from a different place or computer, the idea is to alert you immediately if someone logs in who isn’t you. So if you’re in the UK and get an email stating that there’s been a login under your username from say Australia, please

1) change your password immediately

2) notify your manager or system administrator!

Advertisements